Trying to setup UserApp to work with our existing SSO application for
other web apps. I imported the metadata file for the connection from
the IDP to same server as UserApp. I then ran the configupdate.sh tool
and set auth type to SAML and provided URL of metadata xml file from
IDP. I then restarted the server and downloaded the spmetadata.xml file
and used it to create the IDP connection on the federation server. Now
when I try to sign onto the user app I get the following error:

One SSO Platform Error
Too many login attempts in a short period of time. Please close the
browser, open a new one, and begin a new authentication.

I have tried clearing the cache and closing the browser but same error.
No errors in Catalina or OSP logs. I do see the logs below in the
localhost_access_logs and also when I run the SAML tracer plugin with
firefox. It looks like OSP is never trying to connect to IDP server. I
also checked logs on IDP server and there are no errors there either.

I read an article that said the RBPM to eDirectory SAML Configuration
under the advanced options in the configupdate tool should be set to
Auto. I have tried setting this several times and hitting Ok but every
time I start the configupdate tool it goes back to No Change.

Any ideas on what piece I might be missing or how to troubleshoot?

10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/a/idm/auth/oauth2/grant?response_type=code&client_id=rbpm&state=94d1 f561-a690-4b03-b7ce-69b963ee32ea&redirect_uri=https%3A//serverdns%3A5043/dev/oauth
HTTP/1.1" 200 375
10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/a/idm/auth/app/login?acAuthCardId=eIDPLogin&sid=0 HTTP/1.1" 200
375
10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/a/idm/auth/app/login?acAuthCardId=eIDPLogin&sid=0 HTTP/1.1" 200
375
10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/a/idm/auth/app/login?acAuthCardId=eIDPLogin&sid=0 HTTP/1.1" 200
375
10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/a/idm/auth/app/login?acAuthCardId=eIDPLogin&sid=0 HTTP/1.1" 200
375
10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/a/idm/auth/app/login?acAuthCardId=eIDPLogin&sid=0 HTTP/1.1" 200
141621
10.199.225.160 - - [05/Nov/2015:10:06:49 -0600] "GET
/osp/images/productlogo.png HTTP/1.1" 404 1003


--
CHSB1130
------------------------------------------------------------------------
CHSB1130's Profile: https://forums.netiq.com/member.php?userid=6130
View this thread: https://forums.netiq.com/showthread.php?t=54606